hobbit@AIM.RUTGERS.EDU ("�*Hobbit*") (11/15/85)
One way to avoid that ACL-related security hole is to run virtual terminals.
That way, the user can only set the ACL for the VTAnn: device [even if he
explicitly specifies the physical device name! -- weird...], which goes
away after he logs out [taking the ACL with it].
Which brings to mind the following question: If, say vta3: was recreated
somewhere down the line [however improbable this may be], would it still
have the ACL attached? I would think not, since it's a new device.
_H*
------